[go: up one dir, main page]

CN109165506A - A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection - Google Patents

A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection Download PDF

Info

Publication number
CN109165506A
CN109165506A CN201810727722.5A CN201810727722A CN109165506A CN 109165506 A CN109165506 A CN 109165506A CN 201810727722 A CN201810727722 A CN 201810727722A CN 109165506 A CN109165506 A CN 109165506A
Authority
CN
China
Prior art keywords
fault
server
virus
tolerant
industrial control
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810727722.5A
Other languages
Chinese (zh)
Other versions
CN109165506B (en
Inventor
徐晓光
李宪亭
李准峰
史喜平
肖辉
韩彦福
贾文艺
康烨
贾嘉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Tobacco Henan Industrial Co Ltd
Original Assignee
China Tobacco Henan Industrial Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Tobacco Henan Industrial Co Ltd filed Critical China Tobacco Henan Industrial Co Ltd
Priority to CN201810727722.5A priority Critical patent/CN109165506B/en
Publication of CN109165506A publication Critical patent/CN109165506A/en
Application granted granted Critical
Publication of CN109165506B publication Critical patent/CN109165506B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/55Detecting local intrusion or implementing counter-measures
    • G06F21/56Computer malware detection or handling, e.g. anti-virus arrangements
    • G06F21/568Computer malware detection or handling, e.g. anti-virus arrangements eliminating virus, restoring damaged files
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F11/00Error detection; Error correction; Monitoring
    • G06F11/07Responding to the occurrence of a fault, e.g. fault tolerance
    • G06F11/14Error detection or correction of the data by redundancy in operation
    • G06F11/1402Saving, restoring, recovering or retrying
    • G06F11/1446Point-in-time backing up or restoration of persistent data

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Virology (AREA)
  • General Health & Medical Sciences (AREA)
  • Quality & Reliability (AREA)
  • Hardware Redundancy (AREA)
  • Computer And Data Communications (AREA)
  • Multi Processors (AREA)

Abstract

本发明提供了一种工控容错服务器在线病毒查杀和病毒防护的方法,包括以下步骤:步骤1:对不同运行环境的容错服务器进行不同的备份操作;步骤2:分析不同生产环境的工控信息管理系统数据服务器端口,判断被生产系统使用的端口和空闲端口;步骤3:选择安全稳定的杀毒软件对系统进行全盘杀毒;步骤4:对通过病毒查杀不能解决问题的,进行进一步处理;本发明能够生产网络工控信息管理系统的系统架构,对处于不同运行环境中的容错服务器进行备份,并区分被系统使用的端口和空闲端口,进而对空闲端口进行封堵,并且能够进行全盘病毒查杀,且不会误删工控信息管理系统文件或容错服务器的AUL系统文件,方便、快捷、实用。

The invention provides a method for online virus detection and virus protection of an industrial control fault-tolerant server, comprising the following steps: step 1: performing different backup operations on fault-tolerant servers in different operating environments; step 2: analyzing industrial control information management in different production environments System data server port, to determine the port and free port used by the production system; Step 3: Select safe and stable antivirus software to carry out overall antivirus for the system; Step 4: Further processing is performed on the problem that cannot be solved by virus detection and killing; the present invention It can produce the system architecture of the network industrial control information management system, back up the fault-tolerant servers in different operating environments, distinguish the ports used by the system and the free ports, and then block the free ports, and can perform comprehensive virus detection and killing, And it will not delete the industrial control information management system file or the AUL system file of the fault-tolerant server by mistake, which is convenient, fast and practical.

Description

A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection
Technical field
The present invention relates to disposed the type of production industry of intelligent Style Product Information Management System environment, the information security neck of enterprise A kind of method of domain more particularly to industry control fault-tolerant server online checking and killing virus and antivirus protection.
Background technique
With further going deep into for industrial 4.0 technologies, manufacturing intelligent level has significant progress, but industry is raw It is also unprecedented for producing to the dependence of industry control information management system, and any failure of industry control information management system can all make production It is influenced at certain, or even causes to produce comprehensive paralysis.The second half year in 2017, computer are extorted virus and are wreaked havoc, many productions in the whole nation The computer information system of type factory and enterprise has different degrees of contamination, and office system computer virus can be according to operating system The scheme that official provides, has uniformly carried out antivirus software installation, and office is counted in the methods of port closure, operating system patch installing Calculation machine system extorts virus and carries out killing and protection.But since the environment of production network industry control information management system is special, every Industrial control computer equipment fault all can cause to directly affect, especially industry control fault-tolerant server, if also directly taken to production Antivirus software antivirus, port block, it is likely that the AUL that will cause fault-tolerant server is accidentally deleted or destroyed, and certainly will will cause industry control Information management system failure or even the paralysis of industry control fault-tolerant server, cause to seriously affect to production.
Summary of the invention
The purpose of the present invention is to provide a kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection, energy The system architecture for enough producing network industry control information management system carries out the fault-tolerant server in different running environment standby Part, and the port used by system and idle port are distinguished, and then block to idle port, and be able to carry out overall disease Malicious killing, and will not accidentally delete the AUL system file of industry control information management system file or fault-tolerant server.
To achieve the goals above, the invention adopts the following technical scheme:
A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection, comprising the following steps:
Step 1: different backup operations is carried out to the fault-tolerant server of different running environment;
Step 2: the industry control Data in Information Management System Service-Port of different production environments is analyzed, compares interface program one by one, Analysis port data character judges the port used by production system and idle port;
Step 3: the antivirus software of safety and stability being selected to kill virus system totally;
Step 4: to unsatisfactory by checking and killing virus or checking and killing virus process, port block process and industry control caused to believe The fault-tolerant server that breath management system goes wrong, off line reform system, the RDR and network of fault-tolerant server are reconfigured, again portion Affix one's name to industry control Information Management System Software and data.
The step 1 the following steps are included:
Step 1.1: fault-tolerant server on a virtual machine all being run to all industry control information management systems, plans as a whole computer money Source carries out snapshot operation to each virtual machine respectively;
Step 1.2: the fault-tolerant server in physical machine all being operated in all industry control information management systems, setting entity backs up clothes Business device or virtual backup server carry out 1:1 running environment and operation data backup;
Step 1.3: having industry control Data in Information Management System to the operation of physical machine server, also operation has virtual machine in physical machine Server, also operation has industry control Data in Information Management System in virtual machine server, using physical machine server backup strategy, Then snapshot operation is carried out to the virtual machine in physical machine again.
The step 2 the following steps are included:
Step 2.1: first by instruction, checking that server all of the port occupancy situation, analysis port occupy Program Type;
Step 2.2: the PID process in resource manager that compares is analyzed, and determines the port occupied by production system and operation system The port address that system operation occupies;
Step 2.3: to not blocked by the port that production system or operating system occupy.
The step 3 the following steps are included:
Step 3.1: the antivirus software that selection is suitable for industrial control computer environment carries out installation and deployment;
Step 3.2: antivirus protection is carried out to server by antivirus software;
Step 3.3: overall killing being carried out to fault-tolerant server, then manual operation processing virus document, to prevent from manslaughtering or miss Delete the AUL system file of industry control information management system file or fault-tolerant server;
Step 3.4: the virus document found being analyzed one by one, to industry control information management system file or the fault tolerant service of really admitting a fault The virus document of the AUL system file of device, is isolated manually;
Step 3.5: observation fault-tolerant server operating condition is analyzed industry control Data in Information Management System stream, is confirmed to virus document After isolation does not cause system problem, comminuted processing is carried out to the virus document of isolation;
Step 3.6: setting antivirus software prevention policies intercept virus document automatically.
The step 4 the following steps are included:
Step 4.1: to virtual machine fault-tolerant server, backup virtual machine operation is first switched to, then into the snapshot of initial back-up Restore, restore data manually, then dispose antivirus protection, be incorporated into the power networks again after stable, all switchings should all stop production in production Off time section carries out;
Step 4.2: to physical machine fault-tolerant server, needing 1:1 to back up a property server, in net operation with virus, to fault-tolerant Server carries out overall data deletion, reforms operating system, the RDR and network of fault-tolerant server is reconfigured, and redeploys industry control letter Management system software and data are ceased, virus protection tool is disposed, the property server after stable operation again with backup operation carries out Switching, all switchings should all be carried out in production halt production off time section;
Step 4.3: operation has virtual machine and contamination physical machine fault-tolerant server, and 1:1 first backs up an entity services Outside device, then according to virtual machine number backup property server or virtual server, then entity fault-tolerant server is carried out overall Data are deleted, and reform operating system, the RDR and network of fault-tolerant server is reconfigured, reforms virtual machine environment, redeploy industry control letter Breath management system software and data dispose virus protection tool, then in production halt production off time section and with malicious backup services Device switches over.
Beneficial effects of the present invention:
A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection of the present invention, is able to produce network work The system architecture for controlling information management system backs up the fault-tolerant server in different running environment, and distinguishes and be The port and idle port that system uses, and then idle port is blocked, and be able to carry out overall checking and killing virus, and will not The AUL system file of industry control information management system file or fault-tolerant server is accidentally deleted, it is convenient, fast, practical.
Detailed description of the invention
It, below will be to specific in order to illustrate more clearly of the specific embodiment of the invention or technical solution in the prior art Embodiment or attached drawing needed to be used in the description of the prior art be briefly described, it should be apparent that, it is described below Attached drawing is some embodiments of the present invention, for those of ordinary skill in the art, before not making the creative labor It puts, is also possible to obtain other drawings based on these drawings.
Fig. 1 is flow chart of the method for the present invention.
Specific embodiment
Technical solution of the present invention is clearly and completely described below in conjunction with attached drawing, it is clear that described implementation Example is a part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, ordinary skill Personnel's every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection of the present invention as shown in Figure 1:, The following steps are included:
Step 1: different backup operations is carried out to the fault-tolerant server of different running environment, specifically includes the following steps:
Step 1.1: fault-tolerant server on a virtual machine all being run to all industry control information management systems, plans as a whole computer money Source carries out snapshot operation to each virtual machine respectively;
Step 1.2: the fault-tolerant server in physical machine all being operated in all industry control information management systems, setting entity backs up clothes Business device or virtual backup server carry out 1:1 running environment and operation data backup, restore at the first time to go wrong;
Step 1.3: having industry control Data in Information Management System to the operation of physical machine server, also operation has virtual machine in physical machine Server, also operation has industry control Data in Information Management System in virtual machine server, using physical machine server backup strategy, Then snapshot operation is carried out to the virtual machine in physical machine again.
Step 2: analyzing the industry control Data in Information Management System Service-Port of different production environments, compare port journey one by one Sequence, analysis port data character judge the port used by production system and idle port, specifically includes the following steps:
Step 2.1: first by instruction, checking that server all of the port occupancy situation, analysis port occupy Program Type;
Step 2.2: the PID process in resource manager that compares is analyzed, and determines the port occupied by production system and operation system The port address that system operation occupies;
Step 2.3: to not blocked by the port that production system or operating system occupy.
Step 3: select the antivirus software of safety and stability to kill virus system totally, specifically includes the following steps:
Step 3.1: the antivirus software that selection is suitable for industrial control computer environment carries out installation and deployment;
Step 3.2: antivirus protection is carried out to server by antivirus software;
Step 3.3: overall killing being carried out to fault-tolerant server, then manual operation processing virus document, to prevent from manslaughtering or miss Delete the AUL system file of industry control information management system file or fault-tolerant server;
Step 3.4: the virus document found being analyzed one by one, to industry control information management system file or the fault tolerant service of really admitting a fault The virus document of the AUL system file of device, is isolated manually;
Step 3.5: observation fault-tolerant server operating condition is analyzed industry control Data in Information Management System stream, is confirmed to virus document After isolation does not cause system problem, comminuted processing is carried out to the virus document of isolation;
Step 3.6: setting antivirus software prevention policies intercept virus document automatically.
Step 4: to unsatisfactory by checking and killing virus or checking and killing virus process, port block process and cause work The fault-tolerant server that control information management system goes wrong, off line reform system, the RDR and network of fault-tolerant server are reconfigured, weight New deployment industry control Information Management System Software and data, specifically includes the following steps:
Step 4.1: to virtual machine fault-tolerant server, backup virtual machine operation is first switched to, then into the snapshot of initial back-up Restore, restore data manually, then dispose antivirus protection, be incorporated into the power networks again after stable, all switchings should all stop production in production Gap and there is enough emergency reaction periods to carry out;
Step 4.2: to physical machine fault-tolerant server, needing 1:1 to back up a property server, in net operation with virus, to fault-tolerant Server carries out overall data deletion, reforms operating system, the RDR and network of fault-tolerant server is reconfigured, and redeploys industry control letter Management system software and data are ceased, virus protection tool is disposed, the property server after stable operation again with backup operation carries out Switching, all switchings all in production halt production gap and should have enough emergency reaction periods to carry out;
Step 4.3: operation has virtual machine and contamination physical machine fault-tolerant server, and 1:1 first backs up an entity services Outside device, then according to virtual machine number backup property server or virtual server, then entity fault-tolerant server is carried out overall Data are deleted, and reform operating system, the RDR and network of fault-tolerant server is reconfigured, reforms virtual machine environment, redeploy industry control letter Management system software and data are ceased, dispose virus protection tool, no matter physical machine or virtual machine server will carry out abundance Operation test, confirm after no problem just in production halt production gap and can there is enough emergency reaction periods, and standby with poison Part server switches over.
A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection of the present invention, is able to produce net The system architecture of network industry control information management system backs up the fault-tolerant server in different running environment, and distinguishes The port used by system and idle port, and then idle port is blocked, and be able to carry out overall checking and killing virus, and The AUL system file of industry control information management system file or fault-tolerant server will not be accidentally deleted, it is convenient, fast, practical.
Finally, it should be noted that the above embodiments are only used to illustrate the technical solution of the present invention., rather than its limitations;To the greatest extent Pipe present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: its according to So be possible to modify the technical solutions described in the foregoing embodiments, or to some or all of the technical features into Row equivalent replacement;And these are modified or replaceed, various embodiments of the present invention technology that it does not separate the essence of the corresponding technical solution The range of scheme.

Claims (5)

1.一种工控容错服务器在线病毒查杀和病毒防护的方法,其特征在于,包括以下步骤:1. a method for online virus detection and virus protection of industrial control fault-tolerant server, is characterized in that, comprises the following steps: 步骤1:对不同运行环境的容错服务器进行不同的备份操作;Step 1: Perform different backup operations on fault-tolerant servers in different operating environments; 步骤2:分析不同生产环境的工控信息管理系统数据服务器端口,逐一对照端口程序,分析端口数据性质,判断被生产系统使用的端口和空闲端口;Step 2: Analyze the data server ports of the industrial control information management system in different production environments, compare the port programs one by one, analyze the nature of the port data, and determine the ports and free ports used by the production system; 步骤3:选择安全稳定的杀毒软件对系统进行全盘杀毒;Step 3: Select a safe and stable antivirus software to perform an overall antivirus on the system; 步骤4:对通过病毒查杀不能解决问题的,或病毒查杀过程、端口封堵过程造成工控信息管理系统出现问题的容错服务器,脱机重做系统,重配容错服务器的RDR和网络,重新部署工控信息管理系统软件和数据。Step 4: For the fault-tolerant server that cannot be solved by virus scanning and killing, or the fault-tolerant server that has a problem with the industrial control information management system caused by the virus scanning and killing process and port blocking process, redo the system offline, reconfigure the RDR and network of the fault-tolerant server, and then reconfigure the fault-tolerant server. Deploy industrial control information management system software and data. 2.根据权利要求1所述的一种工控容错服务器在线病毒查杀和病毒防护的方法,其特征在于,所述步骤1包括以下步骤:2. the method for online virus detection and virus protection of a kind of industrial control fault-tolerant server according to claim 1, is characterized in that, described step 1 comprises the following steps: 步骤1.1:对所有工控信息管理系统都运行在虚拟机上的容错服务器,统筹计算机资源,分别对每一个虚拟机进行快照操作;Step 1.1: Coordinate computer resources for all fault-tolerant servers running on virtual machines for all industrial control information management systems, and perform snapshot operations on each virtual machine; 步骤1.2:对所有工控信息管理系统都运行在实体机上的容错服务器,设置实体备份服务器或虚拟备份服务器,进行1:1运行环境和运行数据备份;Step 1.2: For all fault-tolerant servers running on the physical machine of the industrial control information management system, set up a physical backup server or a virtual backup server, and perform a 1:1 operating environment and operating data backup; 步骤1.3:对实体机服务器运行有工控信息管理系统数据,在实体机上还运行有虚拟机服务器,虚拟机服务器上也运行有工控信息管理系统数据的,采用实体机服务器备份策略,然后再对实体机上的虚拟机进行快照操作。Step 1.3: If the physical machine server runs the industrial control information management system data, the physical machine also runs the virtual machine server, and the virtual machine server also runs the industrial control information management system data, adopt the physical machine server backup strategy, and then The virtual machine on the machine performs a snapshot operation. 3.根据权利要求1所述的一种工控容错服务器在线病毒查杀和病毒防护的方法,其特征在于,所述步骤2包括以下步骤:3. the method for online virus detection and virus protection of a kind of industrial control fault-tolerant server according to claim 1, is characterized in that, described step 2 comprises the following steps: 步骤2.1:首先通过指令,查看服务器所有端口占用情况,分析端口占用程序类型;Step 2.1: First, check the occupancy of all ports of the server through the command, and analyze the type of the port occupancy program; 步骤2.2:比对资源管理器中PID进程进行分析,确定被生产系统占用的端口和操作系统运行占用的端口地址;Step 2.2: Compare and analyze the PID process in the resource manager to determine the port occupied by the production system and the port address occupied by the operating system; 步骤2.3:对未被生产系统或操作系统占用的端口进行封堵。Step 2.3: Block ports that are not occupied by the production system or operating system. 4.根据权利要求1所述的一种工控容错服务器在线病毒查杀和病毒防护的方法,其特征在于,所述步骤3包括以下步骤:4. the method for online virus detection and virus protection of a kind of industrial control fault-tolerant server according to claim 1, is characterized in that, described step 3 comprises the following steps: 步骤3.1:选择适用于工控计算机环境的杀毒软件进行安装部署;Step 3.1: Select antivirus software suitable for industrial computer environment for installation and deployment; 步骤3.2:通过杀毒软件对服务器进行病毒防护;Step 3.2: Use antivirus software to protect the server from viruses; 步骤3.3:对容错服务器进行全盘查杀,然后手动操作处理病毒文件,以防止误杀或误删工控信息管理系统文件或容错服务器的AUL系统文件;Step 3.3: Completely check and kill the fault-tolerant server, and then handle the virus files manually to prevent accidental killing or deletion of the industrial control information management system file or the AUL system file of the fault-tolerant server; 步骤3.4:对查出的病毒文件逐一分析,对确认不是工控信息管理系统文件或容错服务器的AUL系统文件的病毒文件,手动进行隔离;Step 3.4: Analyze the detected virus files one by one, and manually isolate the virus files that are confirmed to be not the files of the industrial control information management system or the AUL system files of the fault-tolerant server; 步骤3.5:观察容错服务器运行情况,分析工控信息管理系统数据流,确认对病毒文件隔离未造成系统问题后,对隔离的病毒文件进行粉碎性处理;Step 3.5: Observe the operation of the fault-tolerant server, analyze the data flow of the industrial control information management system, and shred the isolated virus file after confirming that the isolation of the virus file does not cause system problems; 步骤3.6:设定杀毒软件防护策略,对病毒文件进行自动拦截。Step 3.6: Set anti-virus software protection policies to automatically intercept virus files. 5.根据权利要求1所述的一种工控容错服务器在线病毒查杀和病毒防护的方法,其特征在于,所述步骤4包括以下步骤:5. the method for online virus detection and virus protection of a kind of industrial control fault-tolerant server according to claim 1, is characterized in that, described step 4 comprises the following steps: 步骤4.1:对虚拟机容错服务器,首先切换到备份虚拟机运行,然后进初始备份的快照恢复,手动恢复数据,再部署病毒防护,运行稳定后再并网运行,所有切换都应在生产停产间隙时间段进行;Step 4.1: For the virtual machine fault-tolerant server, first switch to the backup virtual machine to run, then restore the snapshot of the initial backup, manually restore the data, and then deploy the virus protection, and then run the network after the operation is stable. time period; 步骤4.2:对实体机容错服务器,需要1:1备份一台实体服务器,在网带毒运行,对容错服务器进行全盘数据删除,重做操作系统,重配容错服务器的RDR和网络,重新部署工控信息管理系统软件和数据,部署病毒防护工具,稳定运行后再和备份运行的实体服务器进行切换,所有切换都应在生产停产间隙时间段进行;Step 4.2: For the fault-tolerant server of the physical machine, it is necessary to back up a physical server 1:1, run it on the network with virus, delete the entire data of the fault-tolerant server, redo the operating system, reconfigure the RDR and network of the fault-tolerant server, and redeploy the industrial control system. Information management system software and data, deploy virus protection tools, and then switch to the back-up physical server after stable operation. All switching should be performed during the time period between production shutdowns; 步骤4.3:运行有虚拟机的而且染毒的实体机容错服务器,首先1:1备份一台实体服务器外,然后按照虚拟机个数备份实体服务器或虚拟服务器,再对实体容错服务器进行全盘数据删除,重做操作系统,重配容错服务器的RDR和网络,重做虚拟机环境,重新部署工控信息管理系统软件和数据,部署病毒防护工具,然后在生产停产间隙时间段与带毒备份服务器进行切换。Step 4.3: Run a physical fault-tolerant server with virtual machines and infected with viruses. First, back up one physical server 1:1, then back up the physical server or virtual server according to the number of virtual machines, and then delete the entire data of the physical fault-tolerant server. , redo the operating system, reconfigure the RDR and network of the fault-tolerant server, redo the virtual machine environment, redeploy the software and data of the industrial control information management system, deploy the virus protection tool, and then switch with the virus-containing backup server during the production shutdown interval .
CN201810727722.5A 2018-07-05 2018-07-05 A method for online virus detection and virus protection of industrial control fault-tolerant server Active CN109165506B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810727722.5A CN109165506B (en) 2018-07-05 2018-07-05 A method for online virus detection and virus protection of industrial control fault-tolerant server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810727722.5A CN109165506B (en) 2018-07-05 2018-07-05 A method for online virus detection and virus protection of industrial control fault-tolerant server

Publications (2)

Publication Number Publication Date
CN109165506A true CN109165506A (en) 2019-01-08
CN109165506B CN109165506B (en) 2021-07-20

Family

ID=64897310

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810727722.5A Active CN109165506B (en) 2018-07-05 2018-07-05 A method for online virus detection and virus protection of industrial control fault-tolerant server

Country Status (1)

Country Link
CN (1) CN109165506B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112507335A (en) * 2020-11-26 2021-03-16 中国大唐集团科学技术研究院有限公司 Thermal power plant industrial control system virus checking and killing implementation method based on edge cloud coordination
CN114124558A (en) * 2021-11-30 2022-03-01 北京天融信网络安全技术有限公司 Operation response method and device, electronic equipment and computer readable storage medium
CN116108440A (en) * 2023-04-12 2023-05-12 北京网藤科技有限公司 Processing method, device, equipment and medium for injecting industrial control key software

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1308278A (en) * 2001-02-15 2001-08-15 华中科技大学 IP fault-tolerant method for colony server
CN1609814A (en) * 2004-09-14 2005-04-27 中国人民解放军上海警备区司令部指挥自动化工作站 Monitoring operation system for data catastrophic failure-tolerant backup control system
CN1710966A (en) * 2005-07-08 2005-12-21 北京邮电大学 An intelligent peripheral system with business generation capabilities based on control and application separation
KR100606478B1 (en) * 2001-11-30 2006-07-31 듀아키시즈 가부시키가이샤 Apparatus, method, and system for virus detection
CN1848841A (en) * 2005-04-05 2006-10-18 华为技术有限公司 Route equipment backup method
CN101217470A (en) * 2007-12-29 2008-07-09 华为技术有限公司 Method and device for forwarding message
CN101819545A (en) * 2010-04-09 2010-09-01 济南银泉科技有限公司 Method for realizing platform migration by using virtualization technology
US20110078795A1 (en) * 2004-09-22 2011-03-31 Bing Liu Threat protection network
CN103778031A (en) * 2014-01-15 2014-05-07 华中科技大学 Distributed system multilevel fault tolerance method under cloud environment
CN107203440A (en) * 2017-05-27 2017-09-26 郑州云海信息技术有限公司 A kind of integration is backed up in realtime disaster tolerance system and building method
CN107291580A (en) * 2017-05-04 2017-10-24 复旦大学 MATLAB software system and method

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1308278A (en) * 2001-02-15 2001-08-15 华中科技大学 IP fault-tolerant method for colony server
KR100606478B1 (en) * 2001-11-30 2006-07-31 듀아키시즈 가부시키가이샤 Apparatus, method, and system for virus detection
CN1609814A (en) * 2004-09-14 2005-04-27 中国人民解放军上海警备区司令部指挥自动化工作站 Monitoring operation system for data catastrophic failure-tolerant backup control system
US20110078795A1 (en) * 2004-09-22 2011-03-31 Bing Liu Threat protection network
CN1848841A (en) * 2005-04-05 2006-10-18 华为技术有限公司 Route equipment backup method
CN1710966A (en) * 2005-07-08 2005-12-21 北京邮电大学 An intelligent peripheral system with business generation capabilities based on control and application separation
CN101217470A (en) * 2007-12-29 2008-07-09 华为技术有限公司 Method and device for forwarding message
CN101819545A (en) * 2010-04-09 2010-09-01 济南银泉科技有限公司 Method for realizing platform migration by using virtualization technology
CN103778031A (en) * 2014-01-15 2014-05-07 华中科技大学 Distributed system multilevel fault tolerance method under cloud environment
CN107291580A (en) * 2017-05-04 2017-10-24 复旦大学 MATLAB software system and method
CN107203440A (en) * 2017-05-27 2017-09-26 郑州云海信息技术有限公司 A kind of integration is backed up in realtime disaster tolerance system and building method

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
肖辉: "基于PROFIBUS总线的分布式控制系统冗余容错的关键技术", 《智能计算机与应用》 *
黄志宏: "基于云计算的网络安全威胁及防范", 《重庆理工大学学报( 自然科学)》 *

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112507335A (en) * 2020-11-26 2021-03-16 中国大唐集团科学技术研究院有限公司 Thermal power plant industrial control system virus checking and killing implementation method based on edge cloud coordination
CN114124558A (en) * 2021-11-30 2022-03-01 北京天融信网络安全技术有限公司 Operation response method and device, electronic equipment and computer readable storage medium
CN114124558B (en) * 2021-11-30 2024-02-06 北京天融信网络安全技术有限公司 Operation response method, device, electronic equipment and computer readable storage medium
CN116108440A (en) * 2023-04-12 2023-05-12 北京网藤科技有限公司 Processing method, device, equipment and medium for injecting industrial control key software
CN116108440B (en) * 2023-04-12 2024-01-26 北京网藤科技有限公司 Processing method, device, equipment and medium for injecting industrial control key software

Also Published As

Publication number Publication date
CN109165506B (en) 2021-07-20

Similar Documents

Publication Publication Date Title
CN103973481A (en) System and method for auditing cloud computing data center based on SDN
CN103973676A (en) Cloud computing safety protection system and method based on SDN
CN109362235B (en) Method of classifying transactions at a network accessible storage device
CA2999377C (en) Non-intrusive digital agent for behavioral monitoring of cybersecurity-related events in an industrial control system
KR101649909B1 (en) Method and apparatus for virtual machine vulnerability analysis and recovery
CN118484267B (en) Cloud computing-based online service computing power optimization method and system
CN104392175A (en) System and method and device for processing cloud application attack behaviors in cloud computing system
US11799875B2 (en) Computerized system for complying with certain critical infrastructure protection requirements
CN105740093A (en) Backup method, environment update pre-detection method and system thereof
CN108712425A (en) A kind of analysis monitoring and managing method towards industrial control system network security threats event
CN107395395B (en) Processing method and device for safety protection system
CN107544470A (en) A kind of controller guard technology based on white list
CN108551449B (en) Antivirus management system and method
CN109165506A (en) A kind of method of industry control fault-tolerant server online checking and killing virus and antivirus protection
CN114268460A (en) Network security anomaly detection method and device, storage medium and computing equipment
JP6555721B2 (en) Disaster recovery system and method
CN112714022A (en) Control processing method and device for multiple clusters and computer equipment
JP6933320B2 (en) Cybersecurity framework box
CN113836525B (en) Cloud service business risk analysis method and device
CN107835177B (en) Virus protection method, system, device and storage medium
CN108062471A (en) Risk processing method and equipment in a kind of system for cloud computing operational process
CN120295854A (en) Exception handling method, computing device, storage medium and program product
Mahmudov Network server system management
CN116707967A (en) Cloud computer security system deployment method and application platform
CN116980216A (en) Virtual resource safety protection implementation method and system based on no agent

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant